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(57) Abstract 



A secure computer network comprises a plurality of terminals <T1, T2, etc.) connected to a common file server S. terminal 
holds m .^moTa^ ^nc^ted uS variable and unique first and second conjugates for each user authorised to use that terminal. The 
umaue ^ of registration of a user, from master keys stored on a separate disc or other memory me4mm 

u^d^ and the identity number of the user to be registered. A password is randomly generated and used to 

£cr£ £ STiSi^^e first conjugate isa randomly generated message, "" ch * S£rf5 
second conjugate In order to log on at a given terminal, the user must enter his password, and the terminal then uses this pwmd l as 
Sy St tne tot conjugate, and compares it with the stored second conjugate: if the two agree, the terminal is enabled for that 
person to use. A high level of security is therefore attained. 
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Secure Computer Network 

This invention relates to computer networks and more 
particularly to a computer network arranged to provide a high 
level of security. 

It is common in computer networks for individual users 
5 to be required to enter their personal passwords in order to 
gain access to the system. However, present password-based 
security arrangements are prone to a number of abuses, which 
undermine the security of the system. 

We have now devised a computer network which is 
10 arranged to provide a high level of security, and which is not 
open to degradation of that high level of security. 

In accordance with the present invention, there is 
provided a computer network system which comprises a plurality 
of individual remote terminals and a central file server, each 
15 terminal being arranged to hold, in a memory thereof, an 
encrypted unique variable and unique first and second 
conjugates for each user authorised to use that terminal, the 
second conjugate being a password-encrypted form of the first 
conjugate . 

20 This system is thus arranged so that in order to log on 

at a given terminal, the user must enter his password, and the 
terminal then uses this password as the key to encrypt the 
first conjugate which is stored at that terminal for that user, 
and compares that encrypted first conjugate with the stored 

25 second conjugate: if the two agree, the terminal is enabled 
for that person to use. 

The system requires each person to register at each 
terminal which he is intended to use: he cannot use any 
terminal at which he is not registered. 

3 0 The system enables each person, once registered, to 

change his password at will. In order to do this, the system 
requires the person to log on as described above, then (in 
response to the user entering the required commands) call up 
the encrypted unique variable for that user and decrypts that 

3 5 encrypted unique variable, using the user's current password 
(the encrypted unique variable which is stored being a password 
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- encryption of the unique variable itself) . The system then 
allows the user to select and enter his own new password, and 
the terminal then encrypts the user's unique variable with the 
new password, and creates new first and second conjugates (the 
5 second conjugate being a password-encrypted form of the first 
conjugate, as previously) . The terminal now stores, for that 
user, his new encrypted unique variable and new first and 
second conjugates, in place of the original ones. 

Preferably the system is arranged to create the first 
10 conjugate (at initial registration and on change-of -password) 
on a random basis. Preferably the unique code is generated by 
the terminal, at initial registration, by a predetermined 
algorithm and as a function of (a) a master key or set of 
master keys, (b) a unique identifying number or code for the 
15 terminal, and (c) a unique identifying number or code for the 
particular user to be registered* Preferably the master key 
(or set of master keys) is entered at the terminal temporarily 
for each registration procedure, by a security manager . 
Preferably the master keys are held on a disc or other memory 
20 medium normally kept secure by the security manager. 

The master key or keys are also held in memory in a 
secure manner at the central file server. The system is able 
to transmit data in encrypted form between the file server and 
terminal and vice versa, in the following manner. 
25 Thus, the user logs on at his terminal, as described 

above. The system is arranged so that, for the purpose of 
encrypted transmission, it calls up the user's encrypted unique 
variable and decrypts this with the user's password. The 
terminal then randomly generates a session key, and encrypts 
30 the session key with the unique variable (preferably however, 
the terminal also randomly generates an open key and the 
session key is encrypted with the unique variable and the open 
key) . The encrypted session key (or both encrypted session key 
and open key) are sent as headers from the terminal to the 
35 server, together with the user's identity number. It will be 
appreciated that because the file server stores the master 
keys, then it is able to recreate the particular user's unique 
variable (for the terminal which he is operating) from (a) the 
master keys, (bj the terminal identity number and (c) the 
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user's identity number. From this (and from the open key also 
transmitted as header to the file server) , the file server is 
arranged to determine the random session key. 

Communication between the terminal and file server then 
5 proceeds with each message being encrypted by the random 
session key before being sent (whether from the terminal to the 
server or from the server to the terminal) , and decrypted by 
the random session key at the receiving end. Each terminal may 
be arranged to change the session key periodically, for example 
10 for each new session of use, or at intervals within each 
session of use. 

An embodiment of this invention will now be described 
by way of example only and with reference to the accompanying 
drawing, the single figure of which is a schematic diagram of 
15 a computer network system in accordance with this invention. 

Referring to the drawing, there is shown a typical 
computer network comprising a plurality of terminals T1,T2 etc 
connected to a common file server S. In order to register a 
particular user at a particular terminal, say terminal Tl, the 

2 0 security manager carries out the following procedure. Thus, 

the security manager temporarily loads a disc D at that 
terminal Tl, the disc D holding a plurality of master keys, say 
40 keys (typically each key being a number of several digits 
length) . The security manager also enters, at that terminal 
25 Tl, the identity number of the user being registered. A 
registration program, held in the terminal or loaded into the 
terminal from the disc D, then generates a unique variable from 
(a) the master keys, (b) the identity number of the terminal 
and (c) the identity number of the user to be registered. An 

3 0 initial password is pseudo randomly generated and given to the 

user and entered at the terminal Tl, and the registration 
program then encrypts the unique variable using the initial 
password. Further, the registration program creates first and 
second conjugates: the first conjugate is a randomly-generated 
35 short message in plain, and then the first conjugate is 
encrypted by the initial password to form the second conjugate; 
this latter encryption is irreversible in that the first 
conjugate (or a part thereof) is used to form part of the 
primitives for the encryption. The registration procedure 
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4 

concludes with the terminal Tl storing (a) the encrypted unique 
variable, (b) the first conjugate and (c) the second conjugate, 
these being stored at the terminal Tl against the user's name. 

In order that the user can now use the network from 
5 that terminal Tl, he must enter his password for verification. 
Firstly he enters his name, then his password. Upon entering 
the password, the terminal Tl (under control of its security 
program) reads the first conjugate from its memory store, and 
encrypts this with the password as entered: the result is 

10 compared with the second conjugate also held in the memory 
store; if there is agreement, the entered password is verified 
and the terminal Tl is enabled for that user to use* 

The user, after initial registration, will want to 
change his initial password to a password known only to 

15 himself. In order to do this, firstly he logs on at the 
terminal Tl for which he is registered, using his initial 
password in the procedure described above. He then uses the 
security program to call up the encrypted unique variable, 
which is held in the terminal's memory against his name, and 

2 0 re-enters his password to decrypt the encrypted unique 
variable, i.e. giving the unique variable itself. The user 
then selects his own password, and enters this at the same 
terminal: the terminal Tl encrypts the unique variable with the 
new password, and creates new first and second conjugates in 

2 5 the same manner as in initial registration, described above. 
The terminal Tl then stores, against that user's name, the new 
encrypted unique variable and the new first and second 
conjugates, in pLace of the original ones. In order to log on 
in future at that terminal, the user must enter his new 

30 password for verification, as described previously. 

Communication between each terminal T1,T2 etc and the 
file server S takes place in encrypted manner, as follows. 
Thus, once a user logs on at a terminal e.g. Tl for which he 
is registered (in the manner described above) , he calls up his 

35 encrypted unique variable from the terminal's memory store, and 
decrypts this by re-entering his password, which recreates the 
unique variable itself. The terminal's security program now 
randomly generates an open key and a session key, and encrypts 
the session key with the unique variable and open key. The 
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open key and the encrypted session key are sent as headers, 
together with the user's identity number, to the file server 
S. The file server S permanently stores the master keys (the 
same set of master keys which are carried by the security 
manager's disc D which was loaded temporarily at registration) . 
The file server S is thus able to reconstruct the unique 
variable for the user at the relevant terminal Tl, from (a) the 
master keys, (b) the terminal number and (c) the user's 
identity number. The file server S is therefore able, using 
the reconstructed unique variable and the open key transmitted 
to it as a header, to determine the random session key from the 
encrypted session key which it receives from the terminal Tl. 
Communication between the terminal Tl and the file server S 
then proceeds with each message being encrypted by the random 
session key before being sent from the terminal Tl to the 
server S, and the encrypted message being decrypted at the file 
server S using the random session key reconstructed by the file 
server S. Communication of messages or data from the file 
server S to the terminal Tl is similarly encrypted at the 
server S and decrypted at the terminal Tl . The session key can 
be changed for each new session of use, or it can be changed 
periodically even within each session of use (e.g. after 
predetermined intervals of time) . 
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